Continued from NetFlow Generators: Enabling NetFlow Without NetFlow Support (Part #1)…

Last week we covered NetFlow Generator basics including many of the more common deployment options. Now let’s take a look at some of the NetFlow generators available and what characteristics to look for in a best-of-breed NetFlow generator.

Read more »

Adam Powers
@adampowers22

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Monitoring out of order packets has just gotten easier.  In the past, it has been a challenge to setup specialized applications and tests to identify if poor application performance is being caused by out of order packets.

Read more »

Paul

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

PSAMP is what allows the Catalyst 4948E to support NetFlow-Lite and it is the first switch from Cisco to support IPFIX.  This feature demonstrates Cisco’s commitment to IPFIX, a protocol slowly gaining ground on Cisco’s NetFlow in popularity.  The main difference being that IPFIX is the proposed flow standard in RFC 5101 and 5102.  Did you know that Cisco is one of the major proponents of IPFIX? Read more »

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

NetFlow probes allow for advanced traffic analysis in areas of your network that don’t have the required hardware to export NetFlow data. While I was on a support call with one of our customers they showed me a map of their NetFlow probe implementation and I was in awe with how many Windows NetFlow probes and Linux NetFlow probes that they’ve deployed on their network to allow for advanced NetFlow traffic analysis.

Read more »

Paul

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

We’ve had many requests from people using our NetFlow, sFlow and IPFIX analyzer for the ability to view and save reports in PDF format and with our v8.5 release, NetFlow PDF reporting is now available.

Read more »

Paul

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

While doing a demonstration of the reporting capabilities of Scrutinizer last week, I had a customer ask, “How can I monitor Netflix traffic?”

There are a couple of ways that this can be done.

If you have Cisco routers, and are running IOS 15.1 or higher, there is an option to enable NBAR. Using Flexible NetFlow, we create a user defined flow template by adding the collect NBAR application option parameters to the flow record. Then it is just a matter of selecting the NBAR report filters available in Scrutinizer.

But I would like to show you a way to use a template option to capture and pass URL’s. We will be using nProbe to capture traffic from an interface on a device and export IPFIX templates to Scrutinizer.

The set up of nProbe is a simple process of using command line options to configure the template and create and start a nProbe service.

Once we see the device and interfaces in Scrutinizer, it is just a matter of adding filters to the report to isolate the Netflix traffic.

Read more »

Scott Robertson
Sr. Solutions Engineer

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Using Flexible NetFlow (FnF) to configure user defined templates, you have the ability to export layer 2 information such as MAC address, fragment identification and VLAN ID’s.

Using the right NetFlow and sFlow Analysis tool, gives you the ability to fully report on those user defined fields set up in the Flexible NetFlow templates.

Included in the reporting engine in Scrutinizer v8 is an advanced filter that lets you filter any report on any field found in the exported NetFlow template. 

Scrutinizer is currently the only product on the market that lets you do this.

Using the Advanced Filter, lets see how we can use those layer 2 user defined fields to filter a Conversation report on a MAC address and then exclude an interface from the report.

Read more »

One of the cool new features added to the reporting engine in the latest release of our NetFlow and sFlow Analysis tool is the Advanced Filter option. This filter lets you filter the data in any report on any field that is present in the exported template. So filtering reports on things like MAC addresses and Vlan ID’s are all possible.

Let’s take a look at a cool use of the MAC address filter.

We have our Cisco wireless access point plugged into our Enterasys N series NetFlow capable switch (PLXRSW1).  This allows us to look at the volume of traffic coming from the wireless devices.

The above is useful, but I wanted to narrow in on the hand held devices.  Specifically, I wanted to find out how much traffic is placed on the network when a person streams a NetFlix movie to their hand held.

Read more »

The nProbe configuration portion of this blog has been depreciated by the release of nProbe v6.1.1.  Please see our Recommended nProbe Templates blog for the most recent configuration.

The question, “How do I configure nProbe to export URL and Latency information?” has started to come up more often in support, so I want to take the time to demonstrate how to configure nProbe and how to analyze URLs and latency with NetFlow.

Read more »

Paul

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!

Intermittent jitter issues with voice and video can be one of the more challenging IT issues to troubleshoot. Since traditional NetFlow  reporting does not include latency information, we are somewhat limited in NetFlow Analysis. None the less, we have to work with what we got! 

Read more »

Michael Patterson
Founder and CEO

For a free 30 day trial of Scrutinizer, Download Now!

Sign up for Advanced NetFlow Training™ coming to a city near you!